CVE-2018-7633

CVE-2018-7633

EPSS 1.3%

Code injection in the /ui/login form Language parameter in Epicentro E_7.3.2+ allows attackers to execute JavaScript code by making a user issue a manipulated POST request.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fschallock.wordpress.com/2018/10/08/cve-2018-7633-script-injection-in-the-login-form-language-parameter-of-adb-firmware-epicentro-7-3-2/